All customers of MAC.NETWORK should be aware that we may hold and store client data that could be of a personal nature or could enable access to personal data. The data we hold is solely for the purposes of providing our services to you.
In order to comply with the forthcoming EU regulations, information that we hold will require a Legitimate Interest Assessment (LIA) to determine whether it’s in everybody’s interest that we continue to store it. Any personal information that cannot be justifiably retained, to benefit our mutual interests, will be deleted.
In normal circumstances, our Customer’s data will not be shared with any third party or revealed to any other organisation and it may be retained as long as we think it might assist us in providing our services to you or until we receive an authenticated request from you to destroy it.
In special circumstances we may have to share your personal data with the parties set out below:
- Service providers (for example Google) who provide IT and system administration services.
- Professional advisers including lawyers, bankers, auditors and insurers who provide consultancy, banking, legal, insurance and accounting services.
- HM Revenue & Customs, regulators and other authorities based in the United Kingdom and other relevant jurisdictions who require reporting of processing activities in certain circumstances.
- Third parties to whom we might sell, transfer, or merge parts of our business.
We require all third parties to whom we transfer your data to respect the security of your personal data and to treat it in accordance with the law. We only allow such third parties to process your personal data for specified purposes and in accordance with our instructions.
KEEPING YOUR PERSONAL INFORMATION SECURE
We have appropriate security measures in place to prevent personal information from being accidentally lost, or used or accessed in an unauthorised way. We limit access to your personal information to those who have a genuine business need to know it. Those processing your information will do so only in an authorised manner and are subject to a duty of confidentiality.
We may retain information such as as login details, passwords, email or personal addresses solely for the purpose of improving our service to you. From May 2018 all such data will be stored in encrypted form within a Google Cloud account managed and owned by MAC.NETWORK and protected by two factor authentication. Our data is stored within the EU according to Google’s GDPR statement.
We also have procedures in place to deal with any suspected data security breach. We will notify you and any applicable regulator of a suspected data security breach where we are legally required to do so. If you have any questions or would like to know more about how your data is protected, please reply directly to this email.
Please note that our policy is to destroy all existing records pertaining to any organisation and its staff, if there has been no contact between us in the previous 6 years. Please email the CIO if you would like a copy of any data that we have on record for you or your organisation. If you do not want organisational or personal data kept on file please contact the CIO above with your request.
YOUR RIGHTS TO CORRECT AND ACCESS YOUR INFORMATION AND TO ASK FOR IT TO BE ERASED
Please contact John Hunter who is responsible for data protection, who can be contacted by email (firstname.lastname@example.org) or letter, if (in accordance with applicable law) you would like to correct or request access to information that we hold relating to you or if you have any questions about this notice. You also have the right to ask for some but not all of the information we hold and process to be erased (the ‘right to be forgotten’) in certain circumstances. Further information can be provided if requested.
Complaints about the way we handle your data should be sent to our CIO in the first instance but you have a statutory right to take any grievance to the Information Commissioner’s Office (https://ico.org.uk).